What is CVE-2026-6409?

CVE-2026-6409 is a security advisory published by Microsoft Security Response Center (MSRC) with High severity. Denial of Service (DoS) vulnerability exists in the Protobuf PHP library during the parsing of untrusted input

Which CVE IDs does CVE-2026-6409 cover?

CVE-2026-6409 covers the following CVE IDs: CVE-2026-6409. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

CVE-2026-6409High

Denial of Service (DoS) vulnerability exists in the Protobuf PHP library during the parsing of untrusted input

Vendor

Microsoft Security Response Center (MSRC)

Published

June 2, 2026

Last Modified

—

🔗 CVE IDs covered (1)

CVE-2026-6409 →